Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/E74BDAD88B8211EB9B656466C4F9AE02.roa
File: E74BDAD88B8211EB9B656466C4F9AE02.roa (raw, json)
Hash identifier: lCAi4plNHyyQiwtqJNCrSiFKPQnQHSQ35YKCiH2HrZM=
Subject key identifier: D6:68:FD:3F:2B:28:D3:E7:E4:E4:46:E7:D0:74:99:E9:C8:BE:BC:29
Certificate issuer: /CN=A916A983/serialNumber=88D87B102F5C2771C367064E2049B68A903C71B5
Certificate serial: 1084
Authority key identifier: 88:D8:7B:10:2F:5C:27:71:C3:67:06:4E:20:49:B6:8A:90:3C:71:B5
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/E74BDAD88B8211EB9B656466C4F9AE02.roa
Signing time: Wed 27 Jul 2022 06:24:37 +0000
ROA not before: Wed 27 Jul 2022 06:24:37 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 4637
IP address blocks: 144.130.128.0/20 maxlen: 24
192.74.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4228 (0x1084)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916A983/serialNumber=88D87B102F5C2771C367064E2049B68A903C71B5
Validity
Not Before: Jul 27 06:24:37 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62e0da24-394f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:24:e4:6b:7e:06:64:1b:9e:cb:ed:ea:7c:3d:
c0:7f:8c:41:82:c6:23:55:09:ea:5c:91:92:38:c4:
11:37:c7:65:f5:2e:f2:69:bb:82:8e:7f:eb:f8:4a:
0e:b4:e6:92:09:1b:a6:18:73:1f:f9:87:ef:46:8d:
7f:7e:78:df:87:54:d8:b6:0e:bb:68:79:b3:7c:55:
41:64:f6:7d:a5:85:5d:15:dd:08:ce:cf:6b:66:14:
09:9f:be:a9:5b:fe:31:f5:a0:98:f6:28:52:95:0e:
25:8d:12:88:d9:dc:65:ee:28:88:43:e7:0c:92:45:
23:af:4f:f9:76:44:48:a6:01:e6:06:4a:3b:27:33:
50:d5:2b:a3:2e:72:8b:f4:26:38:fc:26:e3:66:d0:
12:b6:f5:a8:50:49:fe:35:c0:6c:97:fa:e2:05:fa:
dd:67:90:3f:22:8a:e1:a5:b0:2f:4b:90:d5:ca:16:
b8:22:4d:da:25:dc:97:4c:9a:b4:bd:39:b5:37:68:
da:dc:46:15:55:18:3f:3a:4e:ce:d3:cd:12:2d:e6:
3b:96:f0:c1:b7:be:a0:9b:d9:63:c0:61:d4:25:ef:
f4:4e:76:d8:a4:8f:d6:49:fa:54:e1:08:cd:90:19:
dd:6c:38:a9:05:77:64:b0:4a:ad:ab:10:13:30:2a:
e5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:68:FD:3F:2B:28:D3:E7:E4:E4:46:E7:D0:74:99:E9:C8:BE:BC:29
X509v3 Authority Key Identifier:
keyid:88:D8:7B:10:2F:5C:27:71:C3:67:06:4E:20:49:B6:8A:90:3C:71:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/E74BDAD88B8211EB9B656466C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
144.130.128.0/20
192.74.139.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:e7:fc:33:0d:14:d1:24:76:6d:92:3d:b8:fc:02:43:64:af:
14:4b:55:c5:37:43:49:59:5a:48:77:22:6d:06:32:cf:f7:63:
cb:2e:7b:0c:f3:b0:a7:ee:95:46:80:bb:82:38:26:72:88:63:
43:28:2e:86:27:35:7f:73:56:24:61:78:63:69:36:40:2a:7b:
39:52:9a:2c:3b:c9:53:01:4c:f4:b3:b9:71:02:76:9f:68:a1:
18:75:5f:26:98:c4:4e:7b:6a:d7:26:cd:63:8f:0c:27:be:ae:
93:37:bf:5d:54:73:68:59:11:07:ab:b2:56:52:9e:11:39:9a:
5a:c2:88:b0:00:c4:4a:16:cb:45:72:54:1d:18:55:e1:29:b6:
2c:8c:49:c2:35:14:a6:46:27:2e:87:1a:33:34:a8:ad:61:39:
fc:93:37:61:17:d8:20:9d:69:21:71:de:ef:70:8b:c1:45:30:
f8:b7:f6:9f:3d:e1:86:45:68:0f:ae:26:54:c1:31:bb:1e:da:
75:26:45:dc:c7:8e:4e:90:1a:ad:d9:29:3d:10:7d:21:bc:4a:
ba:07:ed:2a:f9:bf:27:07:62:6f:95:07:f9:b2:b9:76:85:19:
80:ce:49:da:d8:56:72:f0:35:84:0b:2b:15:21:fa:c6:4e:cf:
9d:1f:03:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-ams.rpki-client.org